JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.142

66.132.172.142 was found in our database!

This IP was reported 2,604 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	142.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.142

Whois 66.132.172.142

IP Abuse Reports for 66.132.172.142:

This IP address has been reported a total of 2,604 times from 475 distinct sources. 66.132.172.142 was first reported on March 19th 2026, and the most recent report was 34 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 abuseiphack	2026-05-29 18:05:27 (5 days ago)	Automatic report for brute force attack	Web App Attack
🇺🇸 MPL	2026-05-29 17:25:43 (5 days ago)	tcp/1910 (18 or more attempts)	Port Scan
🇺🇸 aks4226	2026-05-29 16:03:06 (5 days ago)	Brute force on SSH.	SSH Brute-Force
🇩🇪 Dennis	2026-05-29 15:54:31 (5 days ago)	66.132.172.142 has been banned for triggering http-bad-user-agent (2 events over 2.670207431s). The ... show more 66.132.172.142 has been banned for triggering http-bad-user-agent (2 events over 2.670207431s). The user-agent Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/) is not allowed. show less	Bad Web Bot
🇺🇸 antlac1	2026-05-29 15:16:49 (5 days ago)	crowdsecurity/http-bad-user-agent	Brute-Force Web App Attack
🇯🇵 S.O.B.A. Dev.	2026-05-29 15:15:45 (5 days ago)	Persistent port scanning or vulnerability scanning	Port Scan
Anonymous	2026-05-29 13:43:12 (5 days ago)	Http Port:9445 (http_status:403) - Agent:-	Web App Attack
🇩🇪 london2038.com	2026-05-29 13:18:04 (5 days ago)	Connection atttempts against closed TCP ports May 29 15:18:01 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x ... show more Connection atttempts against closed TCP ports May 29 15:18:01 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=40312 DF PROTO=TCP SPT=21070 DPT=26987 WINDOW=21900 RES=0x00 SYN May 29 15:18:02 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=8234 DF PROTO=TCP SPT=21082 DPT=26987 WINDOW=21900 RES=0x00 SYN May 29 15:18:03 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=1011 DF PROTO=TCP SPT=21094 DPT=26987 WINDOW=21900 RES=0x00 SYN show less	Port Scan
🇺🇸 MPL	2026-05-29 12:42:07 (5 days ago)	tcp/139 (22 or more attempts)	Port Scan
🇩🇪 Justin F. \| AS204464	2026-05-29 11:29:12 (5 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 1920 [1] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 1920 [1] TCP Reported by: Justin F. show less	Port Scan
🇦🇺 LiftUp Hosting	2026-05-29 10:51:55 (5 days ago)	Honeypot hit: Empty payload (likely service probe); 6235 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-29 10:26:49 (5 days ago)	Honeypot hit: Empty payload (likely service probe); 7703 [1] TCP	Port Scan
🇩🇪 4server	2026-05-29 10:08:38 (5 days ago)	[FriMay2912:08:36.0085282026][security2:error][pid2034929:tid2035027][client66.132.172.142:0]ModSecu ... show more [FriMay2912:08:36.0085282026][security2:error][pid2034929:tid2035027][client66.132.172.142:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\bshodan\\\\\\\\b\\|\\\\\\\\bcensysinspect\\\\\\\\b\\|\\\\\\\\bcensys\\\\\\\\b\\|\\\\\\\\bexpanse\\\\\\\\b\\|\\\\\\\\bnetsystemsresearch\\\\\\\\b\\|\\\\\\\\bnetcraftsurveyagent\\\\\\\\b\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"73\"][id\"338801\"][rev\"1\"][msg\"Atomicorp.comWAFRules:Blockedinternet-widesurveyorUA\"][severity\"ERROR\"][hostname\"www.serversvizzera.ch.artisteer-italia.org\"][uri\"/\"][unique_id\"ahllpAhnRVGNIeNyQbE1vgAAAMI\"] show less	Port Scan Brute-Force Web App Attack
🇵🇱 axiomofchoice.xyz	2026-05-29 10:05:56 (5 days ago)	endlessh trap: attempts=17 total_time_stuck=280.315s	Port Scan SSH Hacking
🇵🇱 Roper123	2026-05-29 09:45:43 (5 days ago)	Web app exploits	Web App Attack

Showing 166 to 180 of 2604 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 189.155.118.35

🇺🇸 174.76.38.124

🇩🇪 162.158.95.98

🇨🇳 120.48.77.176

🇺🇸 64.62.156.109

🇹🇼 61.231.218.225

🇰🇷 61.84.173.220

🇺🇸 45.131.194.72

🇺🇸 20.64.104.114

🇰🇷 14.63.217.28

🇲🇽 200.77.172.159

🇬🇧 172.69.224.163

🇨🇳 144.123.76.135

🇰🇷 125.138.175.113

🇨🇳 118.145.226.181

🇧🇩 103.136.200.241

🇮🇩 103.115.20.106

🇮🇩 101.255.208.118

🇫🇷 85.217.140.34

🇺🇸 66.132.195.68